GEAR Software CD DVD Filter Driver 'GEARAspiWDM.sys' Multiple Denial of Service Vulnerabilities

GEAR Software CD DVD Filter driver is prone to multiple denial-of-service vulnerabilities because it fails to properly handle user-supplied input.

Successful exploits will allow local attackers to crash an affected computer, resulting in a denial-of-service condition. Due to the nature of these issues, code execution may be possible; however, it has not been confirmed.

The following products are affected:

GEAR CD DVD Filter driver 2.2.0.1
GEAR ISO Burn 1.7.1
Symantec Backup Exec System Recovery 8.5

NOTE (May 17, 2011): This BID was previously titled 'Symantec Backup Exec System Recovery 'GEARAspiWDM.sys' Denial of Service Vulnerability' but has been rewritten to reflect that the underlying issue occurs in the GEAR driver.


 

Privacy Statement
Copyright 2010, SecurityFocus